right, I agree with d_kc. The "public" or general consensus seems to be that offering that on a public site is a no-no. can anyone else share his knowledge about this? I was extremely surprised to find this plugin available here...

If you read the plugin, you have to specifically allow each tag you want. Or take out the ones you don't. :slight_smile: There are semi-public sites that have legit uses for being a bit more open. Or public sites with no public registrations or trusted users.

This plugin makes it easier to manage those kinds of sites, as allowing for a whole pile of varying embed codes for some niches is a huge pain in the butt otherwise.

I don't think all plugins here would be suitable for all sites. It'd be up to you to decide that. :slight_smile:

Me personally, I wouldn't allow embed or script tags in a completely open set-up. While the odds may be low, the risk to me is just too great. One possibility would be to further filter based on the url (if it wasn't youtube, google, etc, then strip it), but even that could be open to potential malicious use.

One may find they get away with it for quite a while without issue. But it only takes one time to kill it.

That being said, I'm not surprised it's available here as this site tries to cater to as many people and uses as possible. It would of course be up to the site admin installing such a plugin to take the responsibility for it, as the plugins here are without warranty or liability. :slight_smile:

I just tried using the unfiltered plugin and adding this: `'br' => array(
'class' => array(), 'id' => array(),
'style' => array()
),` to the array but wpmu 2.6.2 is still filtering my br tags ;-( can I please have some ideas how to allow myself to insert br tags?

well I first used the unfiltered plugin from automatic which should allow all tags, but it didn't work then I tried the additional tags plugin you published here and added the above but still didn't work.

didn't work meaning: I edit a post with the code editor/view, enter a br tag, then switch to the wysiwyg editor then back to the code view again and the br tag is gone.

You use them in the post content that you write. It allows you the use of additional html tags in your content. (ie embeds, iframes, etc.)

If you're running a public mu site where outsiders can sign up and create accounts, you may want to think about the use of such a plugin. For example, take a look at how blogspot has all those hacked blogs that, for example, jump you to another site when you try to view them.

For adsense, you;re going to have to create something yourself. I say that because you;re going to want to add that to the themes directly and you;re going to have to work that into your themes. You may want to look at the advert sharing plugin though. There's a sticky about this.

I;m against using the unfiltered plugin. No matter what you do for security, you;re doing to get people playing with it, trying to find a way around it. Someone may find a way around it and that'll cause you problems.

How do you rate me?

Thank you for rating your experience!

We’re thrilled to hear you had a great experience with . Would you like to leave a comment about your experience?
Thanks for voting on your experience with , we’d love to get some feedback please.
Ohh no! We’re really sorry to hear you didn’t have a pleasant experience with , we’re always looking at how we can improve and would appreciate you provide some further feedback here please.
Type your feedback here

it's great that you had a positive one. Based on your experience in this ticket would you please be kind enough to rate us externally on: